Cloud SSL Certificate Updates
Maintenance window: November 16, 2019 00:01 UTC to November 17, 2019 00:01 UTCImpacted Cloud services:
Cloud SSL certificates for Identity services (.auth.konycloud.com), Engagement services (.messaging.konycloud.com), App services (.konycloud.com), and Sync services (.sync.konycloud.com)
⚠️ Note: If you have not pinned Kony certificates in your application, no application updates will be necessary. Customers that have pinned SSL certificates will need to download the new certificates, rebuild the applications, including both the old and new certificates, and publish the updated binaries to the various app stores. Your applications should be published before Kony updates the certificates on the cloud servers or customers will no longer be able to connect. New certificates can be found on the Kony Cloud Certificate Preview page. The new certificates can also be downloaded by executing the following commands:
Identity:
openssl s_client -showcerts -connect konycertificatepreview.auth.konycloud.com:443
Engagement:
openssl s_client -showcerts -connect konycertificatepreview.messaging.konycloud.com:7443
App:
openssl s_client -showcerts -connect konycertificatepreview.konycloud.com:8443
Sync:
openssl s_client -showcerts -connect konycertificatepreview.sync.konycloud.com:9443
Customers who have pinned the public key instead of the full certificate (which we strongly recommend and was made available in V8 SP4) may not be required to update their applications. The updated certificates will have the same public keys as the existing certificates.
If necessary, you can submit your applications for expedited approval (e.g., Apple has an expedited approval process for critical bugs, or in this case, pinned certificates).
Impact Level : high
Customer applications that have pinned SSL certificates will need to be updated as described above prior to this maintenance window. Customer applications that have not pinned SSL certificates will not be affected and will experience no service disruptions during this maintenance window.
Please refer to our documentation for how to pin the public key of a certificate (which we strongly recommend and was made available in V8 SP4) or how to pin an SSL certificate in your apps (deprecated).